1
#! /bin/sh /usr/share/dpatch/dpatch-run
2
## 085_CVE-2011-3607.dpatch by Stefan Fritsch <sf@debian.org>
4
## All lines beginning with `## DP:' are a description of the patch.
5
## DP: Fix integer overflow, based on upstream r1198940
8
diff -urNad '--exclude=CVS' '--exclude=.svn' '--exclude=.git' '--exclude=.arch' '--exclude=.hg' '--exclude=_darcs' '--exclude=.bzr' trunk~/server/util.c trunk/server/util.c
9
--- trunk~/server/util.c 2011-05-19 04:17:37.000000000 +0200
10
+++ trunk/server/util.c 2011-12-03 18:46:39.875941529 +0100
23
else if (no < nmatch && pmatch[no].rm_so < pmatch[no].rm_eo) {
24
+ if (APR_SIZE_MAX - len <= pmatch[no].rm_eo - pmatch[no].rm_so)
26
len += pmatch[no].rm_eo - pmatch[no].rm_so;